iceberg logo
iceberg logo
iceberg logo
Looking For A Job
I’m Looking To Hire

Senior/Principal Security Engineer

Back to Job Search

I’m opening a very senior IC role in New York City, and this position can he hired at Senior or Principal level.

This is a role for someone who thinks deeply, questions assumptions, and understands security fundamentals at a level where they can learn new domains quickly.

The hiring manager is not looking for someone “perfect” in every area. Critical thinking, fundamentals, and the ability to reason through ambiguous or complex security problems matter far more than ticking boxes.

This role has a large focus on traditional cybersecurity assurance work, validating that the engineering teams and systems are operating securely, and proving (or disproving) assumptions. This includes:

  • Application & product security
  • Cloud and container security
  • Running SAST, SCA, IaC scanning, and cloud security tooling
  • Reviewing code, pipelines, and configurations
  • Finding weaknesses in assumptions and proving where controls don’t behave as expected
  • Strengthening secure development practices and SDLC guardrails

Security Engineering:

There will be opportunities to contribute to:

  • Identity, authentication, and authorization systems
  • Security tooling, internal services, and paved roads
  • Automation that supports engineering teams

Incident Response (Nice to Have)

IR experience is beneficial but not essential.

On-call is required for certain high-value systems, so the ability to stay calm, think clearly, and follow structured processes under pressure is what matters most.

This role is fundamentally about:

  • Critical thinking
  • Questioning assumptions
  • Understanding systems deeply
  • Being willing to learn and adapt
  • Strong foundational security knowledge
  • Breaking ideas down logically and rebuilding them securely

The ideal candidate will naturally ask:

Why does this system work this way?

What assumptions are being made?

What happens if those assumptions fail?

What are alternative approaches?

This thinking style matters more than domain completeness.

Team Fit

The team is relatively junior, so the right person will:

  • Enjoy mentoring and guiding others
  • Bring experience from a more mature security environment
  • Help establish good practices and processes
  • Be willing to get hands-on and handle the “dirty work” of maturing systems
  • Stay flexible across a broad remit

This role suits someone motivated by impact, ownership, and improving the security posture of an evolving environment.

Operating hybrid out of New York City (two days per month)

$500k-$700k TC

Upload your CV/resume or any other relevant file. Max. file size: 0 B.

You can apply to this job and others using your online resume. Click the link below to submit your online resume and email your application to this employer.

Upload your CV/resume or any other relevant file. Max. file size: 0 B.

You can apply to this job and others using your online resume. Click the link below to submit your online resume and email your application to this employer.

Offered Salary $500k-$700k TC Per YEAR
Job Location New York City
Tom Chapman

Tom Chapman

Director

US: 315 508 6500
JOIN OUR NETWORK

Tap Into Our Global Talent Pool

When you partner with Iceberg, you gain access to an unmatched network of 120,000 candidates and 66,000 LinkedIn followers. Our passion for networking allows us to source and place exceptional talent faster than anyone else. Join our community and gain a competitive edge in hiring.
Join Now
Pin
Pin
Pin
Pin
Pin
Pin
Pin
Pin
Pin
Pin
Pin
Pin
Pin
iceberg
Main Menu
About Us
Contact Us
  • UK: +44 203 8876 770
    US: 315 508 6500
  • cybersecurity@thisisiceberg.com
  • 8 Devonshire Square, London, EC2M 4YJ
  • 7001 Brush Hollow Road, Suite 214
    Westbury,
    New York, 11590
    USA
Recruitment Websites by Recsites
Privacy Policy Website Terms Cookie Policy